Robbie Grant Photo
Robbie Grant Photo
Robbie Grant Photo

Robbie Grant is developing a dynamic practice focused on privacy and data protection matters. His expertise covers a wide range of privacy matters, including privacy and data security programs, employee privacy, data breaches, artificial intelligence, and privacy concerns in business transactions.

Robbie supports clients across all industries, including health, automotive, financial, retail, and technology. He has worked with startups and emerging companies as well as established industry leaders.

His experience includes assisting in the development of privacy management programs, privacy policies, and internal guidelines for data governance. Clients rely on him to prepare and negotiate data protection agreements with suppliers and partners.

Responsive to time-sensitive client needs, Robbie provides legal expertise when data breaches occur, including assessing the implications of such breaches and drafting notices to individuals and regulatory authorities when needed.

With in-depth knowledge of privacy law, Robbie provides comprehensive advice to clients. His expertise extends to consumer reporting laws, anti-spam laws and record retention requirements. He also advises on workplace privacy, including employee monitoring; investigations; diversity, equity, and inclusion initiatives; as well as employee privacy complaints.

Robbie offers leading-edge guidance for clients facing rapid technological change. His writing on workplace privacy, cybersecurity, and privacy concerns in mergers and acquisitions has been featured in leading publications.

Robbie started at McMillan as a summer student and completed his articles with the firm. He has volunteered and worked at the University of Toronto Law School’s legal clinic, Downtown Legal Services.



Representative Matters

Privacy and Data Protection

  • Assisted a public organization that had suffered a ransomware attack to meet its legal obligations for notifying regulators and affected individuals.
  • Reviewed and revised internal privacy and data security policies of a global consulting company for compliance with Canadian privacy laws.
  • Assisted a website development company moving into the Canadian market, by revising their internal and external privacy policies.
  • Assisted a tourism company to salvage customer data for marketing purposes, in compliance with privacy and anti-spam laws.
  • Provided advice to a multi-national employment agency with respect to background check obligations in all provinces and territories in Canada.
  • Advised an electric vehicle (EV) manufacturer on proper consent mechanisms for data collected automatically through its vehicles.
  • Assisted in developing employee-monitoring policies for Ontario employers.
  • Assisted a non-for-profit health-sector company in drafting communications to the federal privacy commissioner in the context of a regulatory investigation.
  • Successfully coordinated an appeal of an access to information request in order to assist a company defending an administrative fine.
  • Reviewed and revised a global company’s data retention schedules for compliance with legal requirements in Canada.
  • Assisted companies navigating the privacy implications of vaccine status collection programs in connection with the COVID-19 pandemic.

Corporate Transactions

  • Provided privacy law advice to a private equity firm in connection with its acquisition of a Canadian medical imaging software provider.
  • Provided privacy and data security advice to a software company in connection with its acquisition of a rival software provider.
  • Provided privacy law advice to a large American management services company in connection with its purchase of a leading Canadian IT services provider.
  • Provided privacy law advice to a private equity firm in connection with its acquisition of a global fintech company.

Media Mentions


Education & Admissions

2021
Called to the Ontario bar
2020
JDUniversity of Toronto
2015
BA, Philosophy and DramaUniversity of Toronto

Publications

Insights (44 Posts)View More

Featured Insight

A Word of Caution: Company Liable for Misrepresentations Made by Chatbot

Tribunal finds that a website chatbot is not a separate legal entity and holds company liable for the chatbot's misrepresentations.

Read More
Mar 4, 2024
Featured Insight

FinTech: 2023 Legal Year in Review

The FinTech industry in Canada was impacted by significant regulatory developments in 2023. Explore the key updates in our year-in-review summary.

Read More
Feb 7, 2024
Featured Insight

Happy Data Privacy Week, Canada! 5th Edition

To close out Data Privacy Week, we wanted to give you something you can carry into your weekend. Today we are sharing some of our favourite privacy-related content recommendations. At McMillan, we believe that the pursuit of privacy need not be mundane – as shown by our curated collection of movies, books, podcasts and music.

Read More
Jan 26, 2024
Featured Insight

Developing, Offering and Using Generative AI Technologies: Canadian Privacy Regulators Weigh In

Canada’s privacy regulators have jointly released guidance for organizations that develop, provide and use generative artificial intelligence systems.

Read More
Jan 3, 2024
Featured Insight

Could it be True? Canada to Introduce Open Banking Legislation

On November 21, 2023, the Government of Canada released its 2023 Fall Economic Statement. The Economic Statement announced the federal government's intention.

Read More
Nov 29, 2023
Featured Insight

Transparency for Talent: Proposed Legislation Would Mandate Salary Range and Artificial Intelligence Disclosure in Hiring Process

Ontario will propose legislation aimed at providing additional transparency to Ontario workers, including salary ranges and use of artificial intelligence.

Read More
Nov 8, 2023
Featured Insight

McMillan’s Annual Privacy, Data Protection and Cybersecurity Client Seminar

Join McMillan's Privacy & Data Protection Group on Tuesday, October 17th for an overview of recent significant decisions and regulatory guidance.

Details
Tuesday, October 17, 2023
Featured Insight

Scraping the Surface: Global Privacy Authorities Issue Joint Statement on Data Scraping

Privacy Commissioner of Canada and other global privacy authorities issued a joint statement on data scraping. What are the legal implications and takeaways?

Read More
Aug 31, 2023
Featured Insight

AI Regulatory Roundup: What You Missed in AI News While You Were Gone for the Summer

The relentless march of Artificial Intelligence continues, pushing nations worldwide to adopt diverse strategies to keep pace. Recent AI legal developments.

Read More
Aug 30, 2023
Featured Insight

Legal Risks Associated with Automated Hiring Tools in Canada

Automated hiring and recruitment tools (AI) risk liability under privacy, human rights, or transparency laws, including Quebec's Act 25, the CPPA and AIDA.

Read More
Jul 13, 2023
Featured Insight

Canadians’ Awareness of Open Banking is Low – But Does it Matter?

The results are in: Canadians’ understanding of open banking is low, according to the Financial Consumer Agency of Canada (“FCAC”).

Read More
Jun 29, 2023
Featured Insight

British Columbia’s Pay Transparency Act: Key Takeaways for Employers

The new Pay Transparency Act in BC brings new rules and obligations for BC employers.

Read More
Jun 21, 2023
Featured Insight

OPC Takes Firm Stance on Privacy in the Workplace: Takeaways for Employers

The OPC's Workplace Privacy Guidance discusses employee monitoring and workplace privacy matters, relevant for all employers, not just federal.

Read More
Jun 7, 2023
Featured Insight

The Present and Future of A.I. Regulation

Join us for a session with industry experts who will share valuable insights into the latest trends and developments in artificial intelligence with a particular focus on regulation.

Details
Tuesday, June 20, 2023
Featured Insight

Clocking In and Opting Out: Quebec CAI Issues Warning About Biometric Time Clocks in the Workplace

Following CAI's recent observations, this bulletin provides guidance to comply with the applicable requirements to implement biometric time clocks in Quebec.

Read More
May 24, 2023
Featured Insight

AI Regulatory Roundup – International Developments in AI Law and Policy

An overview of recent Canadian and international developments related to the regulation of artificial intelligence technologies.

Read More
May 2, 2023
Featured Insight

ISED Releases Companion to Proposed AI Law: Timelines, Guidelines, and Enforcement

Summary of ISED's AIDA companion policy and key takeaways for business involved in developing and using artificial intelligence (AI) systems

Read More
Apr 17, 2023
Featured Insight

Privacy Breaches in M&A Deals and the Importance of Data Security Diligence

Data security issues pose risks to a transaction, but can be mitigated with effective data security diligence, and other contractual strategies.

Read More
Apr 3, 2023
Featured Insight

Employment and Privacy Implications of Recent BC Time Theft Case

A recent BC decision has affirmed the position that employee Time Theft is just cause for dismissal.

Read More
Jan 23, 2023
Featured Insight

McMillan’s Annual Privacy, Data Protection and Cybersecurity Client Seminar

Join McMillan's Privacy & Data Protection Group on Wednesday, December 7th for an overview of recent significant legal developments, tips on complying with new and forthcoming obligations under Quebec’s Bill 64, and discussions about hot topics in data management.

Details
Wednesday, December 7, 2022
Featured Insight

The Road to Canada’s Open Banking Framework: Updates from the Working Group Meetings

Four working groups have been working to develop common rules, accreditation criteria, and technical standards for open banking in Canada.

Read More
Nov 2, 2022
Featured Insight

Data Security – The Increasing Danger of Vishing Attacks

This bulletin provides guidance regarding voice phishing, or "vishing" attacks. As they rise in popularity, companies must take action to protect their assets.

Read More
Sep 16, 2022
Featured Insight

New Guidance on Ontario’s Workplace Monitoring Disclosure Regime

This bulletin provides guidance regarding Ontario's new electronic monitoring disclosure obligations for employers under the Employment Standards Act.

Read More
Sep 15, 2022
Featured Insight

OSFI Adds to its Existing Technology and Cyber Risk Requirements with Guideline B-13

OSFI issued final Guideline B-13 – Technology and Cyber Risk Management, key takeaways summarized.

Read More
Jul 26, 2022
Featured Insight

Canadian Privacy Regulators Clarify Requirements for Mobile Apps

A recent joint investigation of Canadian privacy commissioners provides guidance for organizations using mobile apps.

Read More
Jul 5, 2022
Featured Insight

Federal Government Proposes New Act to Reinforce Critical Cyber Security in Canada

Bill C-26, An Act respecting cyber security, would do two things: amend the Telecommunications Act and enact the Critical Cyber Systems Protection Act.

Read More
Jul 5, 2022
Featured Insight

Privacy Reform is on the Table Once More: Canada Introduces the Digital Charter Implementation Act, 2022

New federal privacy legislation has been introduced. If passed, Bill C-27 will materially change the legal landscape for privacy and data protection in Canada.

Read More
Jun 22, 2022
Featured Insight

Federal Privacy Commissioner Releases Key Recommendations for a New Federal Private Sector Privacy Law

The Office of the Privacy Commissioner of Canada released a summary of its key recommendations for a new federal private sector privacy law in Canada

Read More
May 17, 2022
Featured Insight

Open Banking: What it is and what it means for you

As we have received a number of questions from clients regarding our open banking bulletins, we are putting together an interdisciplinary panel of experts to take a deep dive into the implications of an open banking system in Canada, exciting developments & expectations for further progression.

Details
Thursday, June 2, 2022
Featured Insight

Federal Government Appoints Open Banking Lead

The federal government has named Abraham Tachjian to lead the development of open banking in Canada, following an open letter from prominent fintech executives.

Read More
Mar 23, 2022
Featured Insight

Pay No Attention to the Blinking Red Light: Employee Monitoring Laws Announced in Ontario

The Ontario Ministry of Labour has released Bill 88, the Working for Workers Act, 2022, requiring employers to disclose digital employee monitoring practices.

Read More
Mar 3, 2022
Featured Insight

Couldn’t Scrape By: BC Court Rejects Certification of Class Action against Facebook

BC Court dismisses certification application for class action against Facebook for allegedly scraping user data from their messenger app.

Read More
Feb 17, 2022
Featured Insight

Clearview AI Ordered to Comply with Provincial Regulators’ Privacy Recommendations

Canada’s provincial privacy regulators have issued orders against Clearview AI forcing it comply with the
recommendations of a 2020 joint investigation.

Read More
Jan 5, 2022
Featured Insight

Canadian Centre for Cyber Security Releases Ransomware Playbook

Ransomware attacks are on the rise. The Canadian Centre for Cyber Security released a ransomware playbook to help companies prepare for and respond to attacks.

Read More
Dec 21, 2021
Featured Insight

Smartphone Apps Beware – Babylon Health investigation provides insight into compliance with Alberta privacy laws

Key takeaways from the Office of the Information and Privacy Commissioner of Alberta (OIPC)s report re: investigation of the Babylon by Telus Health app.

Read More
Dec 15, 2021
Featured Insight

Canada Partners with the European Commission to Examine Use of Digital Credentials

Increased standards for digital credentials improve privacy and global functionality - but what does this mean for businesses who use them?

Read More
Dec 7, 2021
Featured Insight

Bill 64: A Checklist to Help Businesses Comply with Modern Privacy Requirements in Québec

The new changes to Quebec's privacy legislation usher in the modern era of privacy laws. This checklist establishes priorities and timelines for companies.

Read More
Dec 1, 2021
Featured Insight

McMillan’s Annual Privacy, Data Protection and Cybersecurity Webinar

Our lawyers will provide an overview of important case law developments, regulatory guidance, upcoming statutory changes, and hot topics in Privacy, Data Protection & Cybersecurity

Details
Wednesday, November 10, 2021
Featured Insight

Privacy Implications of an Open Banking System in Canada

Canada’s Advisory Committee on Open Banking's final report- the privacy and data security implications of an open banking system in Canada.

Read More
Oct 12, 2021
Featured Insight

Alberta Recognizes Privacy Tort of Public Disclosure of Private Facts

The Alberta Court of Queen’s Bench recognized the tort of public disclosure of private facts for the first time; In deciding the recognize the tort...

Read More
Sep 27, 2021
Featured Insight

No Damages for Minor Stress and Inconvenience: Quebec Court Dismisses Data Breach Class Action

In March, the Québec Superior Court released a rare decision in which it dismissed a privacy class action on the merits.

Read More
Jun 9, 2021
Featured Insight

CSA Propose Changes to Registration Information, Outside Activities and Reporting Requirements as part of Reduction of Regulatory Burden Initiative

February 4, 2021 - the Canadian Securities Administrators have proposed amendments to the registration information provided by registered individuals and firms.

Read More
Feb 17, 2021
Featured Insight

Another Leap Forward for Canadian Privacy Laws

The Digital Charter Implementation Act, 2020 received its first reading in the House of Commons. If passed, the Act will radically change Canadian Privacy Law.

Read More
Nov 19, 2020
Featured Insight

A Call to Action on Open Banking

On June 19, 2019, the Standing Senate Committee on Banking, Trade and Commerce (“the Committee”) published a report on open banking entitled Open Banking

Read More
Jul 3, 2019